Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

CVE-2026-0826: Poly Voice Linux Remote Code Execution via ICE

CVE-2026-0826

Summary

Poly Voice devices on Linux platforms may allow unauthorized code to be executed if an attacker takes advantage of a buffer overflow vulnerability when Interactive Connectivity Establishment (ICE) is enabled. This could potentially allow hackers to take control of the device. Update the Poly Voice software to the latest version to mitigate this risk.

Original title

In certain scenarios when the admin has enabled Interactive Connectivity Establishment (ICE), a buffer overflow could enable remote code execution on Poly Voice products on the Linux...

Original description

In certain scenarios when the admin has enabled Interactive Connectivity Establishment (ICE), a buffer overflow could enable
remote code execution on Poly Voice products on the Linux platform.

nvd CVSS4.0 9.2

Vulnerability type

CWE-121 Stack-based Buffer Overflow

https://support.hp.com/us-en/document/ish_15052661-15052687-16/hpsbpy04083

Published: 1 Jun 2026 · Updated: 1 Jun 2026 · First seen: 1 Jun 2026